package cn.tedu.csmall.passport.security;

import cn.tedu.csmall.passport.mapper.AdminMapper;
import cn.tedu.csmall.passport.pojo.vo.AdminLoginInfoVO;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;

import java.util.ArrayList;
import java.util.List;

@Slf4j
@Service
public class UserDetailsServiceImpl implements UserDetailsService {
    @Autowired
    AdminMapper adminMapper;

    @Override
    public UserDetails loadUserByUsername(String s) throws UsernameNotFoundException {
        log.debug("Spring Security框架自动调用UserDetailsServiceImpl中的loadUserByUsername方法，参数：{}", s);
        AdminLoginInfoVO admin = adminMapper.getLoginInfoByUsername(s);
        log.debug("从数据库中根据用户名【{}】查询管理员信息，结果：{}",s,admin);
        if (admin==null){
            log.debug("没有与用户名【{}】匹配的用户信息，即将抛出异常",s);
            String message = "登陆失败,用户名不存在!";
            throw new BadCredentialsException(message);
        }

        List<GrantedAuthority> authorities = new ArrayList<>();
        for (String permission : admin.getPermissions()){
            GrantedAuthority authority = new SimpleGrantedAuthority(permission);
            authorities.add(authority);
        }

        AdminDetails adminDetails = new AdminDetails(
                admin.getId(),
                admin.getUsername(),
                admin.getPassword(),
                admin.getEnable()==1,
                authorities

        );

        // 假设正确的用户名 / 密码分别是 root / 1234
//            UserDetails userDetails = User.builder()
//                    .username(admin.getUsername())
//                    .password(admin.getPassword())
//                    .disabled(admin.getEnable() == 0)
//                    .accountLocked(false) // 此项目未设计“账号锁定”的机制，固定为false
//                    .accountExpired(false) // 此项目未设计“账号过期”的机制，固定为false
//                    .credentialsExpired(false) // 此项目未设计“凭证锁定”的机制，固定为false
//                    .authorities("暂时给出的假的权限标识") // 权限
//                    .build();
            log.debug("即将向Spring Security框架返回UserDetails对象：{}", adminDetails);
            return adminDetails;
    }
}
